@@ -45,23 +45,20 @@ def addRule(proto,port,ipAddress):
ruleProtocol = 'port protocol="' + proto + '"'
rulePort = 'port="' + port + '"'
command = "sudo firewall-cmd --permanent --zone=public --add-rich-rule='" + ruleFamily + " " + sourceAddress + " " + ruleProtocol + " " + rulePort + " " + "accept'"
command = "firewall-cmd --permanent --zone=public --add-rich-rule='" + ruleFamily + " " + sourceAddress + " " + ruleProtocol + " " + rulePort + " " + "accept'"
if not FirewallUtilities .doCommand (command ):
return 0
ProcessUtilities .executioner (command )
ruleFamily = 'rule family="ipv6"'
sourceAddress = ''
command = "sudo firewall-cmd --permanent --zone=public --add-rich-rule='" + ruleFamily + " " + sourceAddress + " " + ruleProtocol + " " + rulePort + " " + "accept'"
command = "firewall-cmd --permanent --zone=public --add-rich-rule='" + ruleFamily + " " + sourceAddress + " " + ruleProtocol + " " + rulePort + " " + "accept'"
if not FirewallUtilities .doCommand (command ):
return 0
ProcessUtilities .executioner (command )
command = 'sudo firewall-cmd --reload'
command = 'firewall-cmd --reload'
if not FirewallUtilities .doCommand (command ):
return 0
ProcessUtilities .executioner (command )
return 1
@@ -72,23 +69,20 @@ def deleteRule(proto, port, ipAddress):
ruleProtocol = 'port protocol="' + proto + '"'
rulePort = 'port="' + port + '"'
command = "sudo firewall-cmd --permanent --zone=public --remove-rich-rule='" + ruleFamily + " " + sourceAddress + " " + ruleProtocol + " " + rulePort + " " + "accept'"
command = "firewall-cmd --permanent --zone=public --remove-rich-rule='" + ruleFamily + " " + sourceAddress + " " + ruleProtocol + " " + rulePort + " " + "accept'"
if ProcessUtilities .executioner (command ) == 0 :
return 0
ProcessUtilities .executioner (command )
ruleFamily = 'rule family="ipv6"'
sourceAddress = ''
command = "sudo firewall-cmd --permanent --zone=public --remove-rich-rule='" + ruleFamily + " " + sourceAddress + " " + ruleProtocol + " " + rulePort + " " + "accept'"
command = "firewall-cmd --permanent --zone=public --remove-rich-rule='" + ruleFamily + " " + sourceAddress + " " + ruleProtocol + " " + rulePort + " " + "accept'"
if ProcessUtilities .executioner (command ) == 0 :
return 0
ProcessUtilities .executioner (command )
command = 'sudo firewall-cmd --reload'
command = 'firewall-cmd --reload'
if ProcessUtilities .executioner (command ) == 0 :
return 0
ProcessUtilities .executioner (command )
return 1
@@ -97,7 +91,7 @@ def saveSSHConfigs(type, sshPort, rootLogin):
try :
if type == "1" :
command = 'sudo semanage port -a -t ssh_port_t -p tcp ' + sshPort
command = 'semanage port -a -t ssh_port_t -p tcp ' + sshPort
ProcessUtilities .normalExecutioner (command )
FirewallUtilities .addRule ('tcp' , sshPort , "0.0.0.0/0" )
@@ -127,7 +121,7 @@ def saveSSHConfigs(type, sshPort, rootLogin):
writeToFile .writelines (items )
writeToFile .close ()
command = 'sudo systemctl restart sshd'
command = 'systemctl restart sshd'
ProcessUtilities .normalExecutioner (command )
print ("1,None" )